Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    e40d8168b11a93402373b0988705c74f8a1511c662b4d30ad1b1db945f52ca64.exe

  • Size

    342KB

  • Sample

    240128-vak21adhb7

  • MD5

    82245b49bc0a3970d270d959741e8c9d

  • SHA1

    aac657a3d35867ffd8389776b51058f4cbf0835a

  • SHA256

    1c38ed3b402e492c4b4a5d627c78fcc69f2babc0c77bd01cfac5644a0356b515

  • SHA512

    b10ae6ae116ba16e9663f583483f554362bbcdd5bebf048bbd17f123c61f63e15ca8ea0d413b509af8623c724b06d3a62dfe5aefed96c66c343e74bebbc7e448

  • SSDEEP

    6144:Nx2QdiglMFGfzIBeZO8Wf2cMRQCO/xZqqDLuz+4pQoL27aR9:NAQsgScEydQCJqnuq4z2mR9

Malware Config

Targets

    • Target

      e40d8168b11a93402373b0988705c74f8a1511c662b4d30ad1b1db945f52ca64.exe

    • Size

      342KB

    • MD5

      82245b49bc0a3970d270d959741e8c9d

    • SHA1

      aac657a3d35867ffd8389776b51058f4cbf0835a

    • SHA256

      1c38ed3b402e492c4b4a5d627c78fcc69f2babc0c77bd01cfac5644a0356b515

    • SHA512

      b10ae6ae116ba16e9663f583483f554362bbcdd5bebf048bbd17f123c61f63e15ca8ea0d413b509af8623c724b06d3a62dfe5aefed96c66c343e74bebbc7e448

    • SSDEEP

      6144:Nx2QdiglMFGfzIBeZO8Wf2cMRQCO/xZqqDLuz+4pQoL27aR9:NAQsgScEydQCJqnuq4z2mR9

    • Detects command variations typically used by ransomware

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Creates a large amount of network flows

      This may indicate a network scan to discover remotely running services.

    • Drops desktop.ini file(s)

MITRE ATT&CK Enterprise v15

Tasks